Remote Code Execution Vulnerability in Microsoft Jet Database Engine - MS08-028
|ID: oval:org.secpod.oval:def:2614||Date: (C)2011-10-27 (M)2017-10-04|
|Class: PATCH||Family: windows|
The host is missing a critical security update according to Microsoft security bulletin, MS08-028. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Jet Database Engine (Jet) in Windows, which fails to handle parsing of data within a database. Successful exploitation could allow an attacker to install programs, view, change, or delete data, or create new accounts with full user rights.
|Microsoft Windows 2000|
|Microsoft Windows Server 2003|
|Microsoft Windows XP|
|Microsoft Jet 4.0 Database Engine|